{"id":"https://openalex.org/W2158789702","doi":"https://doi.org/10.1007/978-3-642-22348-8_24","title":"Cyber Situation Awareness: Modeling the Security Analyst in a Cyber-Attack Scenario through Instance-Based Learning","display_name":"Cyber Situation Awareness: Modeling the Security Analyst in a Cyber-Attack Scenario through Instance-Based Learning","publication_year":2011,"publication_date":"2011-01-01","ids":{"openalex":"https://openalex.org/W2158789702","doi":"https://doi.org/10.1007/978-3-642-22348-8_24","mag":"2158789702"},"language":"en","primary_location":{"id":"doi:10.1007/978-3-642-22348-8_24","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-642-22348-8_24","pdf_url":null,"source":{"id":"https://openalex.org/S106296714","display_name":"Lecture notes in computer science","issn_l":"0302-9743","issn":["0302-9743","1611-3349"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Computer Science","raw_type":"book-chapter"},"type":"book-chapter","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://inria.hal.science/hal-01586581","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5010689942","display_name":"Varun Dutt","orcid":"https://orcid.org/0000-0002-2151-8314"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Varun Dutt","raw_affiliation_strings":["Dynamic Decision Making Laboratory, 4609 Winthrop Street, Pittsburgh, PA, 15213, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Dynamic Decision Making Laboratory, 4609 Winthrop Street, Pittsburgh, PA, 15213, USA","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5005208844","display_name":"Young-Suk Ahn","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Young-Suk Ahn","raw_affiliation_strings":["Dynamic Decision Making Laboratory, 4609 Winthrop Street, Pittsburgh, PA, 15213, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Dynamic Decision Making Laboratory, 4609 Winthrop Street, Pittsburgh, PA, 15213, USA","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5076876507","display_name":"Cleotilde Gonz\u00e1lez","orcid":"https://orcid.org/0000-0002-6244-2918"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Cleotilde Gonzalez","raw_affiliation_strings":["Dynamic Decision Making Laboratory, 4609 Winthrop Street, Pittsburgh, PA, 15213, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Dynamic Decision Making Laboratory, 4609 Winthrop Street, Pittsburgh, PA, 15213, USA","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":{"value":5000,"currency":"EUR","value_usd":5392},"apc_paid":{"value":5000,"currency":"EUR","value_usd":5392},"fwci":8.1055,"has_fulltext":false,"cited_by_count":37,"citation_normalized_percentile":{"value":0.97486621,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"280","last_page":"292"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9965000152587891,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9965000152587891,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12268","display_name":"Deception detection and forensic psychology","score":0.9607999920845032,"subfield":{"id":"https://openalex.org/subfields/3207","display_name":"Social Psychology"},"field":{"id":"https://openalex.org/fields/32","display_name":"Psychology"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9466999769210815,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8440455198287964},{"id":"https://openalex.org/keywords/cyber-attack","display_name":"Cyber-attack","score":0.6556110382080078},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5566888451576233},{"id":"https://openalex.org/keywords/focus","display_name":"Focus (optics)","score":0.4814121723175049},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.47753989696502686},{"id":"https://openalex.org/keywords/comprehension","display_name":"Comprehension","score":0.4515376389026642},{"id":"https://openalex.org/keywords/similarity","display_name":"Similarity (geometry)","score":0.4449710249900818},{"id":"https://openalex.org/keywords/situation-awareness","display_name":"Situation awareness","score":0.4289838373661041},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.2835058569908142},{"id":"https://openalex.org/keywords/image","display_name":"Image (mathematics)","score":0.09601694345474243}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8440455198287964},{"id":"https://openalex.org/C201307755","wikidata":"https://www.wikidata.org/wiki/Q4071928","display_name":"Cyber-attack","level":2,"score":0.6556110382080078},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5566888451576233},{"id":"https://openalex.org/C192209626","wikidata":"https://www.wikidata.org/wiki/Q190909","display_name":"Focus (optics)","level":2,"score":0.4814121723175049},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.47753989696502686},{"id":"https://openalex.org/C511192102","wikidata":"https://www.wikidata.org/wiki/Q5156948","display_name":"Comprehension","level":2,"score":0.4515376389026642},{"id":"https://openalex.org/C103278499","wikidata":"https://www.wikidata.org/wiki/Q254465","display_name":"Similarity (geometry)","level":3,"score":0.4449710249900818},{"id":"https://openalex.org/C145804949","wikidata":"https://www.wikidata.org/wiki/Q478123","display_name":"Situation awareness","level":2,"score":0.4289838373661041},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.2835058569908142},{"id":"https://openalex.org/C115961682","wikidata":"https://www.wikidata.org/wiki/Q860623","display_name":"Image (mathematics)","level":2,"score":0.09601694345474243},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.0},{"id":"https://openalex.org/C146978453","wikidata":"https://www.wikidata.org/wiki/Q3798668","display_name":"Aerospace engineering","level":1,"score":0.0},{"id":"https://openalex.org/C120665830","wikidata":"https://www.wikidata.org/wiki/Q14620","display_name":"Optics","level":1,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1007/978-3-642-22348-8_24","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-642-22348-8_24","pdf_url":null,"source":{"id":"https://openalex.org/S106296714","display_name":"Lecture notes in computer science","issn_l":"0302-9743","issn":["0302-9743","1611-3349"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Computer Science","raw_type":"book-chapter"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.713.857","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.713.857","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://www.hss.cmu.edu/departments/sds/ddmlab/papers/Duttetal2011.pdf","raw_type":"text"},{"id":"pmh:oai:HAL:hal-01586581v1","is_oa":true,"landing_page_url":"https://inria.hal.science/hal-01586581","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"23th Data and Applications Security (DBSec), Jul 2011, Richmond, VA, United States. pp.280-292, &#x27E8;10.1007/978-3-642-22348-8_24&#x27E9;","raw_type":"Conference papers"}],"best_oa_location":{"id":"pmh:oai:HAL:hal-01586581v1","is_oa":true,"landing_page_url":"https://inria.hal.science/hal-01586581","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"23th Data and Applications Security (DBSec), Jul 2011, Richmond, VA, United States. pp.280-292, &#x27E8;10.1007/978-3-642-22348-8_24&#x27E9;","raw_type":"Conference papers"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.7400000095367432}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":23,"referenced_works":["https://openalex.org/W1574141395","https://openalex.org/W1583935454","https://openalex.org/W1679907412","https://openalex.org/W1705714200","https://openalex.org/W1977196850","https://openalex.org/W2037875444","https://openalex.org/W2058346590","https://openalex.org/W2060256879","https://openalex.org/W2064241518","https://openalex.org/W2070483480","https://openalex.org/W2096130600","https://openalex.org/W2106188980","https://openalex.org/W2110908300","https://openalex.org/W2115335572","https://openalex.org/W2132726456","https://openalex.org/W2146948159","https://openalex.org/W2150378486","https://openalex.org/W2169371330","https://openalex.org/W2251985815","https://openalex.org/W2274233302","https://openalex.org/W2326327614","https://openalex.org/W4236989406","https://openalex.org/W6691697062"],"related_works":["https://openalex.org/W3024912289","https://openalex.org/W2083687613","https://openalex.org/W2381954448","https://openalex.org/W2738227997","https://openalex.org/W2368512134","https://openalex.org/W4288049909","https://openalex.org/W4390321040","https://openalex.org/W2563739196","https://openalex.org/W2491808042","https://openalex.org/W2726834272"],"abstract_inverted_index":{"In":[0],"a":[1,9,28,55,68,72,85,88,117,123,137,158],"corporate":[2,29],"network,":[3],"the":[4,24,62,91,99,113,134,143,149,166,195,199],"situation":[5,96],"awareness":[6],"(SA)":[7],"of":[8,13,22,27,46,61,67,84,101,119,136,142,148,154,174,178],"security":[10,17,69,155],"analyst":[11,18,70,156],"is":[12,19],"particular":[14],"interest.":[15],"A":[16],"in":[20,71,90,109,157,165,184],"charge":[21],"observing":[23],"online":[25,33],"operations":[26],"network":[30,92],"(e.g.,":[31,82],"an":[32,37,41],"retail":[34],"company":[35],"with":[36],"external":[38],"webserver":[39],"and":[40,64,98,133,151,176],"internal":[42],"fileserver)":[43],"from":[44,131],"threats":[45],"random":[47],"or":[48,125],"organized":[49],"cyber-attacks.":[50],"The":[51,76,140],"current":[52],"work":[53,183],"describes":[54],"cognitive":[56],"Instance-based":[57],"Learning":[58],"(IBL)":[59],"model":[60,78,114,145,167],"recognition":[63,150],"comprehension":[65,152],"processes":[66,153],"simple":[73],"cyber-attack":[74,124],"scenario.":[75],"IBL":[77,144],"first":[79],"recognizes":[80],"cyber-events":[81],"execution":[83,141],"file":[86],"on":[87,189],"server)":[89],"based":[93,127,168],"upon":[94,128,169],"events\u2019":[95,102],"attributes":[97,103],"similarity":[100],"to":[104,193],"past":[105],"experiences":[106],"(instances)":[107],"stored":[108],"analyst\u2019s":[110,161,179],"memory.":[111],"Then,":[112],"reasons":[115],"about":[116],"sequence":[118],"observed":[120],"events":[121],"being":[122],"not,":[126],"instances":[129],"retrieved":[130],"memory":[132],"risk-tolerance":[135],"simulated":[138],"analyst.":[139],"generates":[146],"predictions":[147,196],"cyber-attack.":[159],"An":[160],"decisions":[162],"are":[163],"evaluated":[164],"two":[170],"cyber":[171],"SA":[172],"metrics":[173],"accuracy":[175],"timeliness":[177],"decision":[180],"actions.":[181],"Future":[182],"this":[185],"area":[186],"will":[187],"focus":[188],"collecting":[190],"human":[191],"data":[192],"validate":[194],"made":[197],"by":[198],"model.":[200]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":2},{"year":2019,"cited_by_count":5},{"year":2017,"cited_by_count":4},{"year":2016,"cited_by_count":4},{"year":2015,"cited_by_count":3},{"year":2014,"cited_by_count":4},{"year":2013,"cited_by_count":1},{"year":2012,"cited_by_count":4}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}